|
|
|
|
|
|
|
|
|
|
|
|
|
SecoShield offers the most tight integration with Check Point'sVPN-1¢ç/FireWall-1¢ç Next Generation (NG) software than any other NIDS, providing customers with the flexibility and convenience of single console operation.
|
|
|
|
|
|
Designed by network security experts utilizing the most advanced technology available, SecoShield provides a user-friendly, network-based intrusion detection solution offering unmatched integration, accuracy, performance and security.
SecoShield utilizes multiple OPSEC interfaces that permit security administrators to export the status and connectivity information to the Check Point System Status Viewer from the Intrusion Detection System (IDS), thus allowing for remote manager and sensor management.
The integration also lets administrators access the centrally-defined security policy stored in the Check Point Management Server and define SecoShield policies within that policy, further simplifying the overall management of the IDS infrastructure.
Using this SecoShield interoperability, administrators now can easily manage their IDS remotely, allowing them to step away from on-site security management and focus on improving other aspects of their network's performance.
|
|
|
|
|
|
- OPSEC AMON (Application Monitoring Service)
AMON allows SecoShield to export real-time status information of both the
Manager and the Sensor to the Check Point System Status Viewer.
- OPSEC SAM (Suspicious Activity Monitoring)
SAM enables SecoShield to communicate suspicious activities on a network to the FireWall-1 management server, which allows FireWall-1 to take specific preventive measures that can range from terminating the current session in progress or blocking new session attempts. SecoShield can also set dynamic and time-dependent policies at FireWall-1 to respond to specific attacks.
- OPSEC CPMI (Check Point Management Interface)
CPMI allows SecoShield NG to securely access and import object information stored in the Check Point's central Objects and Policies database. With this interface, a security administrator only needs to define networks, groups, and objects once, at the firewall, eliminating redundancy and simplifying overall management.
-
OPSEC
ELA (Event Logging API)
ELA enables the Check Point Management Console
to become the central repository for all traffic
events, monitoring, and analysis. Consolidated
event management ensures suspicious activities
are tracked and that corrective actions are
taken by FireWall-1 to prevent.
|
|
|
|
 |
 |
 |
 |
|
OPSEC AMON |
OPSEC SAM |
OPSEC CPMI |
OPSEC ELA |
|
|
|
|
|
|
¡¡ |
|
|
|
